$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: gOhGskLamUGHumBrtjTfCQEUd/UBRa42rL1vEN2Grmg= Subject key identifier: 45:D3:A1:9B:A0:59:26:3F:0D:42:97:4A:A9:CB:CC:06:F6:1B:0D:E1 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0131 Signing time: Tue 01 Jul 2025 05:05:49 +0000 Manifest this update: Tue 01 Jul 2025 05:05:49 +0000 Manifest next update: Tue 08 Jul 2025 05:05:49 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: GmpUJWFuJQk4xEPa1nbzLHBoDgLus8JKUK+tTa2Hw/g=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Jul 1 05:05:49 2025 GMT Not After : Jul 8 05:05:49 2025 GMT Subject: CN=68636cad-a5f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:52:5b:2d:44:e3:94:bd:be:28:3c:a2:fd:db: 28:8e:ca:b7:04:8a:3c:ad:21:f5:a9:de:21:5b:25: db:42:6b:82:2c:93:88:e0:f5:18:07:a4:0a:b1:e8: 6f:5f:a3:24:fd:9f:e8:be:c4:7c:b7:78:84:13:3a: e1:e7:88:7b:52:b2:15:2e:c7:ea:73:bb:1b:79:2f: 0f:2c:ac:cb:44:36:1d:f1:44:42:40:4d:60:24:66: ec:ac:d0:1e:ad:08:cc:5c:29:87:17:64:90:d8:3b: 33:9d:f2:2a:8e:6d:b3:bf:78:ee:d0:f6:e2:b1:66: b6:05:61:1f:bb:cc:14:35:aa:55:7c:7d:51:cb:74: 1a:78:5c:15:b8:f4:eb:c8:fa:fe:a0:4e:77:94:c0: 23:5d:85:03:34:77:34:05:ed:0d:c9:6f:96:59:db: f2:38:1d:57:fc:77:94:49:a1:e3:d0:7f:5f:e8:95: 31:88:2b:41:3f:05:cf:63:10:a9:d4:d3:69:27:32: 9e:3e:ac:10:d5:fb:ff:6a:4a:3a:19:03:4f:ed:73: 24:93:f8:d3:78:b4:09:ae:1f:55:37:04:60:15:35: 4f:c0:63:e1:e3:e8:62:2e:48:26:c8:b2:9b:a3:c8: dc:6b:5a:53:da:fc:f0:8f:9b:b4:c8:a4:79:b5:aa: 12:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D3:A1:9B:A0:59:26:3F:0D:42:97:4A:A9:CB:CC:06:F6:1B:0D:E1 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:63:c0:f1:93:81:ab:05:0c:0c:86:74:60:2c:6b:02:94:42: 28:ef:70:bb:09:e1:d3:4e:7c:c8:92:a8:1e:23:7d:e1:6a:67: f4:d9:f3:a6:ac:94:8f:42:fb:22:dc:86:6c:31:b7:aa:de:12: 38:de:5d:88:71:91:c1:2a:95:98:d6:b0:c5:d0:80:c5:a3:a1: 3e:c9:8b:0a:3c:b8:6c:64:63:c3:fa:d7:a2:c3:5f:74:b7:7c: 8e:ad:68:1f:4b:2b:7e:1e:8f:0e:b5:0d:10:93:c0:3c:4c:d4: 84:af:ae:6f:ac:4d:3a:17:77:af:28:ce:b2:c5:4f:96:95:d2: 0e:4d:97:5c:b3:33:07:77:6b:57:e7:19:89:53:f1:a3:5c:e5: d7:15:23:81:2a:4f:61:2c:1c:ed:5f:28:e7:d0:9c:0d:23:af: fc:a6:51:6a:1d:f2:ac:04:59:23:fa:7c:15:ce:e6:36:10:44: 2d:58:1b:3d:c6:2d:a1:fa:b6:06:a4:2f:cc:45:f7:fb:f7:3c: 99:15:5b:5d:bc:cf:fe:44:b2:c9:25:a3:46:13:46:c4:3d:b7: 41:59:b0:08:2b:cd:1d:ae:b4:3d:c4:2f:60:9d:cf:cc:24:bb: 20:9a:8d:a5:d6:1a:70:bb:4c:d4:33:65:d6:27:37:b5:d2:d5: d0:13:af:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwNzAxMDUwNTQ5WhcNMjUwNzA4MDUwNTQ5WjAYMRYwFAYD VQQDEw02ODYzNmNhZC1hNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1JbLUTjlL2+KDyi/dsojsq3BIo8rSH1qd4hWyXbQmuCLJOI4PUYB6QKsehv X6Mk/Z/ovsR8t3iEEzrh54h7UrIVLsfqc7sbeS8PLKzLRDYd8URCQE1gJGbsrNAe rQjMXCmHF2SQ2DsznfIqjm2zv3ju0PbisWa2BWEfu8wUNapVfH1Ry3QaeFwVuPTr yPr+oE53lMAjXYUDNHc0Be0NyW+WWdvyOB1X/HeUSaHj0H9f6JUxiCtBPwXPYxCp 1NNpJzKePqwQ1fv/ako6GQNP7XMkk/jTeLQJrh9VNwRgFTVPwGPh4+hiLkgmyLKb o8jca1pT2vzwj5u0yKR5taoScQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXToZug WSY/DUKXSqnLzAb2Gw3hMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSY8Dxk4GrBQwMhnRgLGsClEIo73C7CeHTTnzIkqgeI33hamf02fOm rJSPQvsi3IZsMbeq3hI43l2IcZHBKpWY1rDF0IDFo6E+yYsKPLhsZGPD+teiw190 t3yOrWgfSyt+Ho8OtQ0Qk8A8TNSEr65vrE06F3evKM6yxU+WldIOTZdcszMHd2tX 5xmJU/GjXOXXFSOBKk9hLBztXyjn0JwNI6/8plFqHfKsBFkj+nwVzuY2EEQtWBs9 xi2h+rYGpC/MRff79zyZFVtdvM/+RLLJJaNGE0bEPbdBWbAIK80drrQ9xC9gnc/M JLsgmo2l1hpwu0zUM2XWJze10tXQE6/0 -----END CERTIFICATE-----Generated at Wed Jul 2 16:41:55 2025 by rpki-client